Idenprotect Authentication Portal Quick Start Guide
The idenprotect Authentication Portal is where a user authenticates in order to access all of the applications that have been integrated with idenprotect. Once the user has authenticated to the Authentication Portal they can access any of these applications without needing to authenticate again.
This quick start guide is a high-level guide to help you get the idenprotect Authentication Portal application up and running quickly. Links will be provided throughout this article to more in-depth documentation if you require it for any particular steps.
Alternatively, for a full in-depth guide, please Start Here - idenprotect Authentication Portal
Steps to install the idenprotect Authentication Portal
- You will need an environment ready, please check that yours meet the Idenprotect Core Platform Prerequisites
- Download the latest idenprotect Authentication Portal Version from the Downloads and Links
- Install the RPM using yum --nogpgcheck localinstall packagename.rpm. More information at Installing with an RPM
- Verify that the idenprotect Authentication Portal is running using service idp status. More information at Verifying an RPM installation
Quick Start Wizard
The Quick Start Wizard is designed to help you do the basic configuration for a standard set up where all idenprotect applications are installed on to the same server. By default, when all applications are on the same server, the idenprotect User Portal is automatically set up as the first Service Provider and the Quick Start Wizard will help you to configure the server, enroll your first device and authenticate using the idenprotect Authentication Portal to the idenprotect User Portal. This article assumes that this is all set up on the same server, if you wish to install on a different server, please refer to the main guide which will give you the detailed configuration information.
Note that in order to complete every step of the Quick Start Wizard, you will need to have installed the idenprotect Core Platform, the idenprotect Authentication Portal and the idenprotect User Portal. If you need help with those installations, please Start Here - idenprotect Core Platform or Start Here - idenprotect User Portal
The Quick Start Wizard is available when arriving on the idenprotect Core Platform dashboard after logging in. If you have closed it and wish to access it again, please go to the Config tab, go to Config Configuration and set Server URL / IP Address to "localhost". When you return to the dashboard it will show again. The Quick Start Wizard is covered in detail in the Idenprotect Core Platform Quick Start Guide
Logging into the idenprotect Authentication Portal directly
When you complete authentication as part of the Quick Start Wizard, you will be redirected and end up logged in directly to the idenprotect User Portal. If you wish to log in to the idenprotect Authentication Portal directly, please go to https://<serverhostname>/idp
If you are doing this directly after completing the Quick Start Wizard and haven't yet closed your browser, your authentication session will still be active and you will arrive logged in to the idenprotect Authentication Portal. If not, you will need to complete the Authentication steps by entering either your email address or the email address of the test user and following the on-screen instructions. Unless alternative authentication options have been set up, this will require that the user logging in still has an enrolled device as biometric information will need to be provided to the enrolled device to complete authentication. If configured, the user may receive a Push Notification on the device that they can accept and follow the instructions directly in the idenprotect For Mobile application.
Once authenticated, you will be shown a list of Service Providers which are available to that user. Just after setup, this will only be the idenprotect User Portal but others will display here as more Service Providers are added.
There are a number of different ways that the Authentication Portal can be authenticated to and additional restrictions can be put in place on Service Providers including the groups and authentication types which are allowed to access each Service Provider. These are covered in detail (with some examples) in Authentication Portal Authentication Options.
Making configuration changes
To give you flexibility in how you use the idenprotect solution, there are many more configurable settings, these ones just help you get up and running. We advise taking a look through How to make configuration changes.
The Idenprotect Authentication Portal Configuration article gives an overview of each of the types of configuration available for the idenprotect Authentication Portal and has links to the relevant articles.
Alternatively, you can view all of our Configuration articles under the Configuration Category. Note that this also includes configuration articles for our other applications.
Once the idenprotect User Portal has been installed and configured and it is ready for testing/deployment. There are a number of steps we recommend taking to harden and secure your installation. Please see our Post Installation Hardening guide.